re-design the otp tool to use a more secure chain to authenticate other than ldap password
by: brian r. | over a year ago | Other
Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.
Votes
3
re-design the otp tool to use a more secure chain to authenticate other than ldap password
by: brian r. | over a year ago | Other
Comments
Failure to properly security the authentication used to enroll TOTP, etc via this Desktop OTP Tool creates a high risk vulnerability in the product that your customers have to then assume, as it creates a single-factor entry point to enroll second factor methods. If a user's password has been phished, now the attacker can compromised 2nd factor registrations, and then use both to access even more sensitive areas of your network that are "protected" by this MFA platform.